$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS199428.roa File: AS199428.roa (raw, json) Hash identifier: jOXfMtevnuK7L43PqLGA2Dlf77Rt127tnnzSY/407Os= Subject key identifier: CF:5D:C5:AD:1F:5D:04:C6:04:EB:FE:EA:E6:41:6C:09:38:93:0A:F1 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 719436AD9DC4E305426A2A819EE02BA230543F4F Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS199428.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 199428 IP address blocks: 2a07:54c1:4300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:94:36:ad:9d:c4:e3:05:42:6a:2a:81:9e:e0:2b:a2:30:54:3f:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=CF5DC5AD1F5D04C604EBFEEAE6416C0938930AF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:13:81:54:d6:a8:70:29:87:9b:37:50:80:86: 27:7e:83:7d:d6:54:4f:a4:52:75:92:8b:17:a9:dd: 27:27:c7:14:e0:fd:29:82:08:3c:e1:f3:39:a4:f9: bc:9e:2a:0c:74:01:75:55:a0:c4:0c:af:e0:59:5c: f7:3d:39:f1:b2:d0:ef:95:32:4f:bf:98:af:6f:ac: dd:1d:b3:c2:44:85:38:c2:3c:f0:b9:4c:19:8a:a2: 2b:44:e3:7b:95:7c:04:7d:16:19:75:43:40:2f:dc: 0b:ae:2d:55:a3:1c:de:98:0a:af:55:0e:5f:fc:03: c8:1b:c6:1e:e4:8f:1a:04:ca:73:58:a5:fe:b5:57: 50:53:52:f3:7e:03:dc:e4:79:05:d1:17:c8:1b:1f: a6:f5:67:7d:c8:48:a0:2d:68:43:1a:e6:ec:fd:d9: 65:af:3d:69:88:01:81:b3:61:7a:8d:46:c4:9c:58: 73:f9:10:e5:ea:cb:d9:78:e8:03:a6:57:9f:98:14: f7:1a:9a:b3:1c:5a:ae:88:39:24:4a:98:2c:38:94: 92:d6:33:85:bc:fb:2d:ff:d3:8e:ef:3a:f2:2f:d4: f7:02:cd:38:ff:c1:71:75:c2:fa:a9:58:17:e7:73: fd:83:21:3f:65:b9:4f:7b:97:5d:bb:d8:f3:5b:27: 3f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:5D:C5:AD:1F:5D:04:C6:04:EB:FE:EA:E6:41:6C:09:38:93:0A:F1 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS199428.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4300::/40 Signature Algorithm: sha256WithRSAEncryption af:14:12:9a:62:8c:f3:9d:30:79:da:64:3b:d2:c2:c8:37:c4: 8f:d3:a4:78:e7:53:75:12:40:9b:3e:e6:0b:e7:ce:a3:75:7b: 7e:5e:65:e3:df:f6:fc:23:e2:dd:8d:3e:1c:53:c7:96:b5:74: b3:79:e8:e6:5d:62:85:93:e5:59:7c:aa:b4:83:95:49:7d:9a: bc:36:e9:09:d8:09:65:d0:52:96:14:7c:81:d9:24:bc:d4:18: bb:0c:66:ea:ac:dc:aa:7f:8b:f9:6d:6a:17:28:3a:49:ba:01: 4c:3c:08:51:c7:47:4d:c7:2f:ec:b1:d6:a6:2d:42:0c:44:e1: b8:d1:f7:5d:d5:f2:2e:74:cb:03:0c:03:9e:75:93:29:08:82: 06:6f:5d:59:35:7b:c5:6c:7d:9c:67:d0:84:2a:05:4c:40:b3: 18:8b:e8:0d:d8:62:16:d4:13:07:91:fb:bc:d2:f4:8b:7f:3c: f9:b8:f9:d2:77:c1:bd:2f:e7:7c:17:03:59:23:8c:58:d8:a3: 7a:11:e6:63:cc:e0:c4:22:d1:75:71:1b:7f:27:42:bf:9c:8f: 41:2c:a9:67:2a:28:be:30:76:ed:87:8c:8d:5e:41:d8:eb:bf: 23:b9:23:ab:67:60:31:83:7f:b7:a9:c3:b1:76:ec:c0:66:86: ce:a4:26:16 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcZQ2rZ3E4wVCaiqBnuArojBUP08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKENGNURDNUFEMUY1RDA0QzYwNEVCRkVFQUU2NDE2QzA5Mzg5MzBBRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgE4FU1qhwKYebN1CAhid+g33W VE+kUnWSixep3ScnxxTg/SmCCDzh8zmk+byeKgx0AXVVoMQMr+BZXPc9OfGy0O+V Mk+/mK9vrN0ds8JEhTjCPPC5TBmKoitE43uVfAR9Fhl1Q0Av3AuuLVWjHN6YCq9V Dl/8A8gbxh7kjxoEynNYpf61V1BTUvN+A9zkeQXRF8gbH6b1Z33ISKAtaEMa5uz9 2WWvPWmIAYGzYXqNRsScWHP5EOXqy9l46AOmV5+YFPcamrMcWq6IOSRKmCw4lJLW M4W8+y3/047vOvIv1PcCzTj/wXF1wvqpWBfnc/2DIT9luU97l1272PNbJz9lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUz13FrR9dBMYE6/7q5kFsCTiTCvEwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMTk5NDI4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUMwDQYJKoZIhvcNAQELBQADggEBAK8UEppijPOdMHnaZDvSwsg3xI/TpHjnU3US QJs+5gvnzqN1e35eZePf9vwj4t2NPhxTx5a1dLN56OZdYoWT5Vl8qrSDlUl9mrw2 6QnYCWXQUpYUfIHZJLzUGLsMZuqs3Kp/i/ltahcoOkm6AUw8CFHHR03HL+yx1qYt QgxE4bjR913V8i50ywMMA551kykIggZvXVk1e8VsfZxn0IQqBUxAsxiL6A3YYhbU EweR+7zS9It/PPm4+dJ3wb0v53wXA1kjjFjYo3oR5mPM4MQi0XVxG38nQr+cj0Es qWcqKL4wdu2HjI1eQdjrvyO5I6tnYDGDf7epw7F27MBmhs6kJhY= -----END CERTIFICATE-----Generated at Sat Jul 5 08:14:21 2025 by rpki-client